faster fail-over between multiple masters
Hi! I have 9.7.0-P1 as slave configured with two masters: M1 and M2. M2 is currently down. When M1 sends a NOTIFY to inform the salve of the new zone, bind starts querying for the SOA record at M2. As M2 is down, bind sends retransmissions and tries it several times. It takes up to 2 minutes until bind starts asking M1 - then the transfer of course works fine. The question is: can I tweak bind to fail-over to other master servers faster? Thanks Klaus ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Separating zone file for static usage and DDNS
Hello everybody, I would like to use DDNS updates for the certain zone. But I also want to configure a part of it statically. However, BIND makes a big mess-up in my zone file after several dynamic updates, which makes editing it not very handy. I also can't add any static record because they would be rewritten by a next data transfer from the journal file to the zone one (although this issue can be solved by using nsupdate). -- Best regards, Slava Prisivko. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Separating zone file for static usage and DDNS
A zone is atomically either static or dynamic. There is no mix. You can freeze a dynamic zone, rendering it temporarily static, and then hand-edit the zone file. This has several side effects, including that incoming updates are dropped while the zone is frozen. You can consider breaking the zone into a parent and one or more subzones, and then set each zone to be either static or dynamic. You can learn to use nsupdate, and forget about ever editing the zone file again (other than while it's frozen). You can use a DNS management system such as those offered by my company and several competitors, and thus not have to think about how to use nsupdate any more. Regards, Chris Buxton BlueCat Networks On Aug 29, 2011, at 10:34 AM, Вячеслав Присивко wrote: Hello everybody, I would like to use DDNS updates for the certain zone. But I also want to configure a part of it statically. However, BIND makes a big mess-up in my zone file after several dynamic updates, which makes editing it not very handy. I also can't add any static record because they would be rewritten by a next data transfer from the journal file to the zone one (although this issue can be solved by using nsupdate). -- Best regards, Slava Prisivko. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Separating zone file for static usage and DDNS
A zone is atomically either static or dynamic. There is no mix. Seems it's the matter of the way of implementation, not the RFCs' restrictions, doesn't it? Why don't propose it for implementing then? 2011/8/29 Chris Buxton chris.p.bux...@gmail.com A zone is atomically either static or dynamic. There is no mix. You can freeze a dynamic zone, rendering it temporarily static, and then hand-edit the zone file. This has several side effects, including that incoming updates are dropped while the zone is frozen. You can consider breaking the zone into a parent and one or more subzones, and then set each zone to be either static or dynamic. You can learn to use nsupdate, and forget about ever editing the zone file again (other than while it's frozen). You can use a DNS management system such as those offered by my company and several competitors, and thus not have to think about how to use nsupdate any more. Regards, Chris Buxton BlueCat Networks On Aug 29, 2011, at 10:34 AM, Вячеслав Присивко wrote: Hello everybody, I would like to use DDNS updates for the certain zone. But I also want to configure a part of it statically. However, BIND makes a big mess-up in my zone file after several dynamic updates, which makes editing it not very handy. I also can't add any static record because they would be rewritten by a next data transfer from the journal file to the zone one (although this issue can be solved by using nsupdate). -- Best regards, Slava Prisivko. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- Best regards, Slava Prisivko. ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: faster fail-over between multiple masters
In message 4e5b6098.80...@pernau.at, Klaus Darilion writes: Hi! I have 9.7.0-P1 as slave configured with two masters: M1 and M2. M2 is currently down. When M1 sends a NOTIFY to inform the salve of the new zone, bind starts querying for the SOA record at M2. As M2 is down, bind sends retransmissions and tries it several times. It takes up to 2 minutes until bind starts asking M1 - then the transfer of course works fine. The question is: can I tweak bind to fail-over to other master servers faster? try-tcp-refresh no; Thanks Klaus ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscrib e from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
slow non-cached quries
Dears, Probably this the thousand time you get these question. but our bind server have slow response time for the non-cached entries. I have run dig with +trace option and below is the result ; DiG 9.8.0-P2 @127.0.0.1 www.google.com +trace ; (1 server found) ;; global options: +cmd . 2013 IN NS i.root-servers.net. . 2013 IN NS g.root-servers.net. . 2013 IN NS l.root-servers.net. . 2013 IN NS m.root-servers.net. . 2013 IN NS d.root-servers.net. . 2013 IN NS b.root-servers.net. . 2013 IN NS k.root-servers.net. . 2013 IN NS j.root-servers.net. . 2013 IN NS c.root-servers.net. . 2013 IN NS a.root-servers.net. . 2013 IN NS h.root-servers.net. . 2013 IN NS e.root-servers.net. . 2013 IN NS f.root-servers.net. ;; Received 228 bytes from 127.0.0.1#53(127.0.0.1) in 1 ms com. 172800 IN NS a.gtld-servers.net. com. 172800 IN NS b.gtld-servers.net. com. 172800 IN NS c.gtld-servers.net. com. 172800 IN NS d.gtld-servers.net. com. 172800 IN NS e.gtld-servers.net. com. 172800 IN NS f.gtld-servers.net. com. 172800 IN NS g.gtld-servers.net. com. 172800 IN NS h.gtld-servers.net. com. 172800 IN NS i.gtld-servers.net. com. 172800 IN NS j.gtld-servers.net. com. 172800 IN NS k.gtld-servers.net. com. 172800 IN NS l.gtld-servers.net. com. 172800 IN NS m.gtld-servers.net. ;; Received 492 bytes from 199.7.83.42#53(l.root-servers.net) in 175 ms google.com. 172800 IN NS ns2.google.com. google.com. 172800 IN NS ns1.google.com. google.com. 172800 IN NS ns3.google.com. google.com. 172800 IN NS ns4.google.com. ;; Received 168 bytes from 192.5.6.30#53(a.gtld-servers.net) in 250 ms www.google.com. 604800 IN CNAME www.l.google.com. www.l.google.com. 300 IN A 209.85.148.106 www.l.google.com. 300 IN A 209.85.148.104 www.l.google.com. 300 IN A 209.85.148.147 www.l.google.com. 300 IN A 209.85.148.99 www.l.google.com. 300 IN A 209.85.148.103 www.l.google.com. 300 IN A 209.85.148.105 ;; Received 148 bytes from 216.239.34.10#53(ns2.google.com) in 225 ms we are running bind version BIND 9.8.0-P2 on CentOS release 5.6 (Final) the process is running as mutlithreaded and consuming total of 60% of cpu utilization. do we have network issue or performance bottleneck. engtmk ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: Max number of views and performance.
I think in use views with diferent zones files, all for same domain, no recursive querys, one view for each network/AS that my bgp router know. On Thu, Aug 25, 2011 at 6:36 AM, Matus UHLAR - fantomas uh...@fantomas.skwrote: 24.08.2011 08:04, sky shade пишет: I like to know if bind 9.8 have a limit of view? There is any number or I can create something like 1 million views without problems? There is any performance implication in use to many views? On 25.08.11 10:27, Dmitry Rybin wrote: I use about 120 views. It accure 1,8gb of RAM in Idle. You must limit recursive cache to 32-64MB per view, and forward all recursive queries to another DNS server (I use powerdns-recurser at 127.0.0.2) for best perfomance. you can also use attach-cache directive to share a cache betwween multiple views. If your views only differ by loaded zones, that should not be a problem. If it's not possible, you (or the OP) can surely configure 120 or e.g. million real or virtual machines to provide the DNS service. That is just what views do within one BIND process. -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Eagles may soar, but weasels don't get sucked into jet engines. __**_ Please visit https://lists.isc.org/mailman/**listinfo/bind-usershttps://lists.isc.org/mailman/listinfo/bind-usersto unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/**listinfo/bind-usershttps://lists.isc.org/mailman/listinfo/bind-users ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
Re: slow non-cached quries
In message CAAKgOtgoifGPNEpHtX7++w=cze1dpxx2degq1ppkz18dpuf...@mail.gmail.com, TMK writes: Dears, Probably this the thousand time you get these question. but our bind server have slow response time for the non-cached entries. I have run dig with +trace option and below is the result ; DiG 9.8.0-P2 @127.0.0.1 www.google.com +trace ; (1 server found) ;; global options: +cmd . 2013 IN NS i.root-servers.net. . 2013 IN NS g.root-servers.net. . 2013 IN NS l.root-servers.net. . 2013 IN NS m.root-servers.net. . 2013 IN NS d.root-servers.net. . 2013 IN NS b.root-servers.net. . 2013 IN NS k.root-servers.net. . 2013 IN NS j.root-servers.net. . 2013 IN NS c.root-servers.net. . 2013 IN NS a.root-servers.net. . 2013 IN NS h.root-servers.net. . 2013 IN NS e.root-servers.net. . 2013 IN NS f.root-servers.net. ;; Received 228 bytes from 127.0.0.1#53(127.0.0.1) in 1 ms com. 172800 IN NS a.gtld-servers.net. com. 172800 IN NS b.gtld-servers.net. com. 172800 IN NS c.gtld-servers.net. com. 172800 IN NS d.gtld-servers.net. com. 172800 IN NS e.gtld-servers.net. com. 172800 IN NS f.gtld-servers.net. com. 172800 IN NS g.gtld-servers.net. com. 172800 IN NS h.gtld-servers.net. com. 172800 IN NS i.gtld-servers.net. com. 172800 IN NS j.gtld-servers.net. com. 172800 IN NS k.gtld-servers.net. com. 172800 IN NS l.gtld-servers.net. com. 172800 IN NS m.gtld-servers.net. ;; Received 492 bytes from 199.7.83.42#53(l.root-servers.net) in 175 ms google.com. 172800 IN NS ns2.google.com. google.com. 172800 IN NS ns1.google.com. google.com. 172800 IN NS ns3.google.com. google.com. 172800 IN NS ns4.google.com. ;; Received 168 bytes from 192.5.6.30#53(a.gtld-servers.net) in 250 ms www.google.com. 604800 IN CNAME www.l.google.com. www.l.google.com. 300 IN A 209.85.148.106 www.l.google.com. 300 IN A 209.85.148.104 www.l.google.com. 300 IN A 209.85.148.147 www.l.google.com. 300 IN A 209.85.148.99 www.l.google.com. 300 IN A 209.85.148.103 www.l.google.com. 300 IN A 209.85.148.105 ;; Received 148 bytes from 216.239.34.10#53(ns2.google.com) in 225 ms we are running bind version BIND 9.8.0-P2 on CentOS release 5.6 (Final) the process is running as mutlithreaded and consuming total of 60% of cpu utilization. do we have network issue or performance bottleneck. engtmk To better match what a nameserver does, what does dig +trace +dnssec show? dig +dnssec +trace www.google.com Mark -- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org ___ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
